On 15 Feb 2018, at 22.16, Travis Dolan travis.dolan@gmail.com wrote:
It would look as though the changes have now negatively affected a "normal" user from logging in.
telnet host 143
a login username password
a NO [AUTHENTICATIONFAILED] Authentication failed.
telnet host 143
1 login devteam*masteruser@example.com password
1 OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE SORT SORT=DISPLAY THREAD=REFERENCES THREAD=REFS THREAD=ORDEREDSUBJECT MULTIAPPEND URL-PARTIAL CATENATE UNSELECT CHILDREN NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 CONDSTORE QRESYNC ESEARCH ESORT SEARCHRES WITHIN CONTEXT=SEARCH LIST-STATUS BINARY MOVE QUOTA] Logged in
What do you think?
So your director is the first entry point where the end users connect?
in that case your director should have passdb setup that verifies the user password and then switches the session to use master password when forwarding the connection to backend.
something like this in director:
passdb { driver = passwd-file args = /data/mail.passwd result_success = continue-ok }
passdb { driver = static args = pass=masterpassword skip = unauthenticated }
and in backend:
passdb { driver = static args = password=masterpassword }
Sami